Thoughtful perspectives on Modern Vulnerability Management.
Power Couple: Kenna’s Vulnerability Intel + ServiceNow Vulnerability Response
Every once in a while, two things come together and create something new. Abbott and Costello. Johnny and June. Fred and Ginger. The whole becomes greater than the sum of its parts.Read More
Sign up to get the latest updates
Risk-Based Vulnerability Management
How to Measure Vendor Performance and Effectiveness
To measure vendor performance and effectiveness, CISOs need to get Informed, evaluate, and compare RBVM programs.
Security Science Podcast Episode 13: Measuring and Minimizing Exploitability
Security Science episode 13 highlights Prioritization to Prediction, Volume 8: Minimizing and Measuring Exploitability.
Managing Assets Intuitively with Hierarchical Risk Meters
This article guides Kenna customers on how to build out a robust hierarchical risk meter structure for quick, easy reporting of risk levels.
Here’s How to Measure Your Organization’s Exploitability
The eighth edition of the Prioritization to Prediction series uncovers how to measure and reduce exploitability.
Gartner identifies VPT as a critical tool for your security arsenal
The latest Gartner Market Guide for Vulnerability Assessment traces the latest trajectory of cybersecurity vendor offerings.
January Vuln of the Month: CVE-2021-26084
The Kenna Risk Score for CVE-2021-26084 is 100, the highest possible score. Just 0.21% of CVEs earn a score this high.
5 Things Every CIO Should Know About VM
Read this eBook to learn what a modern vulnerability management approach means to your IT operation. You discover how it helps CIOs like you create more efficient and effective teams while reducing your company’s overall risk profile.
Why We Should Greet 2022 With Confidence
Facing the challenges of 2022 confidently begins with accepting that security challenges are real and will only grow more numerous.
Employee Spotlight: Dumplings with Dan Mellinger
It’s always wonderful to see your colleagues and your company’s name in a news article, analyst commentary, or research, or social media.
Top Vulns That Flew Under the Radar in 2021
Watch this on-demand webinar to find out the unsuspecting 2021 vulns probably not on your radar but should be.
The Risk Posed By CVEs Doesn’t Stand Still (and Neither Should You)
The Kenna Risk Score for the Apache Log4j library leapt from its original (and already critical) score of 87 to a perfect 100.
Risk Meter Reports – Python
I started looking at our “Asset Group Reporting” APIs. After reading their descriptions, I decided to write down some notes about what they’re reporting.
Why 2022 Can’t Come Soon Enough
The past 12 months have amounted to one giant stress ball, knotted with historic cybersecurity exploits and attacks, a relentless pandemic.